Discovered by the OpenBSD team during their June 2000 audit for format string attacks. First published and posted to Bugtraq as OpenBSD advisory on Oct 3, 2000. Exploit submitted by caddis <caddis@dissension.net> on Oct 2, 2000.